Tuleap does not sanitize properly user settings when constructing the SQL query to browse and search commits in the CVS repositories.
Impact
A authenticated malicious user with read access to a CVS repository could execute arbitrary SQL queries. Tuleap instances without an active CVS repositories are not impacted.
Patches
The following versions contain the fix:
- Tuleap Community Edition 13.2.99.155
- Tuleap Enterprise Edition 13.1-7
- Tuleap Enterprise Edition 13.2-6
For more information
If you have any questions or comments about this advisory, reach out to us via the contact information provided on the Tuleap.org security page.
References
Tuleap does not sanitize properly user settings when constructing the SQL query to browse and search commits in the CVS repositories.
Impact
A authenticated malicious user with read access to a CVS repository could execute arbitrary SQL queries. Tuleap instances without an active CVS repositories are not impacted.
Patches
The following versions contain the fix:
For more information
If you have any questions or comments about this advisory, reach out to us via the contact information provided on the Tuleap.org security page.
References